<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 19 Jul 2026 20:30:43 +0000</lastBuildDate>
    <item>
      <title>7533c11b-5eb0-4858-8130-f5e1b3db75a9</title>
      <link>https://vulnerability.circl.lu/sighting/7533c11b-5eb0-4858-8130-f5e1b3db75a9/export</link>
      <description>{"uuid": "7533c11b-5eb0-4858-8130-f5e1b3db75a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqyx2avxav2k", "content": "\ud83d\udee1\ufe0f VULN: CISA added two critical FortiSandbox command-injection flaws (CVE-2026-39808 +1) to KEV on Jul 16 \u2014 actively exploited. Agencies must patch or pull boxes offline by Sun Jul 19. It feeds verdicts to your whole Fortinet stack; owning it forges trust. Src: CISA / TechTimes", "creation_timestamp": "2026-07-19T14:03:18.765781Z"}</description>
      <content:encoded>{"uuid": "7533c11b-5eb0-4858-8130-f5e1b3db75a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqyx2avxav2k", "content": "\ud83d\udee1\ufe0f VULN: CISA added two critical FortiSandbox command-injection flaws (CVE-2026-39808 +1) to KEV on Jul 16 \u2014 actively exploited. Agencies must patch or pull boxes offline by Sun Jul 19. It feeds verdicts to your whole Fortinet stack; owning it forges trust. Src: CISA / TechTimes", "creation_timestamp": "2026-07-19T14:03:18.765781Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7533c11b-5eb0-4858-8130-f5e1b3db75a9/export</guid>
      <pubDate>Sun, 19 Jul 2026 14:03:18 +0000</pubDate>
    </item>
    <item>
      <title>75d6d775-2de1-48ab-986d-de1f6f195743</title>
      <link>https://vulnerability.circl.lu/sighting/75d6d775-2de1-48ab-986d-de1f6f195743/export</link>
      <description>{"uuid": "75d6d775-2de1-48ab-986d-de1f6f195743", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjqujv2l2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:07.694461Z"}</description>
      <content:encoded>{"uuid": "75d6d775-2de1-48ab-986d-de1f6f195743", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjqujv2l2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:07.694461Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/75d6d775-2de1-48ab-986d-de1f6f195743/export</guid>
      <pubDate>Sat, 18 Jul 2026 15:00:07 +0000</pubDate>
    </item>
    <item>
      <title>b6772491-36fb-424c-8be9-801c908d8a85</title>
      <link>https://vulnerability.circl.lu/sighting/b6772491-36fb-424c-8be9-801c908d8a85/export</link>
      <description>{"uuid": "b6772491-36fb-424c-8be9-801c908d8a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquju3d2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:07.290692Z"}</description>
      <content:encoded>{"uuid": "b6772491-36fb-424c-8be9-801c908d8a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquju3d2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:07.290692Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b6772491-36fb-424c-8be9-801c908d8a85/export</guid>
      <pubDate>Sat, 18 Jul 2026 15:00:07 +0000</pubDate>
    </item>
    <item>
      <title>024fcdc4-7dec-4fc3-a6fd-daccf965e085</title>
      <link>https://vulnerability.circl.lu/sighting/024fcdc4-7dec-4fc3-a6fd-daccf965e085/export</link>
      <description>{"uuid": "024fcdc4-7dec-4fc3-a6fd-daccf965e085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquju3c2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.856934Z"}</description>
      <content:encoded>{"uuid": "024fcdc4-7dec-4fc3-a6fd-daccf965e085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquju3c2d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.856934Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/024fcdc4-7dec-4fc3-a6fd-daccf965e085/export</guid>
      <pubDate>Sat, 18 Jul 2026 15:00:06 +0000</pubDate>
    </item>
    <item>
      <title>24ba8724-c7b8-4ee6-9029-ea5e60342761</title>
      <link>https://vulnerability.circl.lu/sighting/24ba8724-c7b8-4ee6-9029-ea5e60342761/export</link>
      <description>{"uuid": "24ba8724-c7b8-4ee6-9029-ea5e60342761", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjqujt422d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.441663Z"}</description>
      <content:encoded>{"uuid": "24ba8724-c7b8-4ee6-9029-ea5e60342761", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjqujt422d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.441663Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/24ba8724-c7b8-4ee6-9029-ea5e60342761/export</guid>
      <pubDate>Sat, 18 Jul 2026 15:00:06 +0000</pubDate>
    </item>
    <item>
      <title>8a721d20-47c6-4195-aaa2-5eb0561873c2</title>
      <link>https://vulnerability.circl.lu/sighting/8a721d20-47c6-4195-aaa2-5eb0561873c2/export</link>
      <description>{"uuid": "8a721d20-47c6-4195-aaa2-5eb0561873c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquipx22d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.036378Z"}</description>
      <content:encoded>{"uuid": "8a721d20-47c6-4195-aaa2-5eb0561873c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/alphahunt.io/post/3mqwjquipx22d", "content": "CVE-2026-39808 now has 84.158% EPSS. Use that to break remediation ties, not to invent a campaign: no validated actor, victim, ransomware, or geopolitical link surfaced in today's review.", "creation_timestamp": "2026-07-18T15:00:06.036378Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8a721d20-47c6-4195-aaa2-5eb0561873c2/export</guid>
      <pubDate>Sat, 18 Jul 2026 15:00:06 +0000</pubDate>
    </item>
    <item>
      <title>df582b7c-4346-48a5-9cc7-b5ed7177aebe</title>
      <link>https://vulnerability.circl.lu/sighting/df582b7c-4346-48a5-9cc7-b5ed7177aebe/export</link>
      <description>{"uuid": "df582b7c-4346-48a5-9cc7-b5ed7177aebe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mqwbroccqx27", "content": "CISA has added two critical vulnerabilities in Fortinet FortiSandbox, CVE-2026-39808 and CVE-2026-25089, to its KEV Catalog, noting active exploitation in attacks. These OS command injection flaws allow unauthenticated attackers to execute unauthorized commands via crafted HTTP requests.", "creation_timestamp": "2026-07-18T12:37:23.536402Z"}</description>
      <content:encoded>{"uuid": "df582b7c-4346-48a5-9cc7-b5ed7177aebe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3mqwbroccqx27", "content": "CISA has added two critical vulnerabilities in Fortinet FortiSandbox, CVE-2026-39808 and CVE-2026-25089, to its KEV Catalog, noting active exploitation in attacks. These OS command injection flaws allow unauthenticated attackers to execute unauthorized commands via crafted HTTP requests.", "creation_timestamp": "2026-07-18T12:37:23.536402Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/df582b7c-4346-48a5-9cc7-b5ed7177aebe/export</guid>
      <pubDate>Sat, 18 Jul 2026 12:37:23 +0000</pubDate>
    </item>
    <item>
      <title>6016b31d-656b-4998-975c-73847d29e7de</title>
      <link>https://vulnerability.circl.lu/sighting/6016b31d-656b-4998-975c-73847d29e7de/export</link>
      <description>{"uuid": "6016b31d-656b-4998-975c-73847d29e7de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://t.me/S_E_Reborn/6427", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Defused \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0440\u044f\u0434\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u043a\u0438\u0431\u0435\u0440\u0443\u0433\u0440\u043e\u0437 FortiSandbox \u043e\u0442 Fortinet.\n\n14 \u0430\u043f\u0440\u0435\u043b\u044f Fortinet \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0442\u0440\u0435\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439: CVE-2026-39813, CVE-2026-39808 \u0438 CVE-2026-25089.\n\n\u041e\u043d\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u0432\u044b\u0448\u0430\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u043f\u0440\u043e\u0441\u0442\u044b\u0445 \u0430\u0442\u0430\u043a \u0441 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435\u043c \u043a\u043e\u043c\u0430\u043d\u0434, \u043d\u0435 \u0442\u0440\u0435\u0431\u0443\u044e\u0449\u0438\u0445 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c.\n\n\u0414\u043b\u044f \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u044d\u0442\u0438\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0438 \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0432\u0445\u043e\u0434\u044f\u0449\u0438\u0445 \u0430\u0442\u0430\u043a \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u0439.\n\n\u041a\u0430\u043a \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442 \u0432 Defused, \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 24 \u0447\u0430\u0441\u0430 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet FortiSandbox, \u0432\u043a\u043b\u044e\u0447\u0430\u044f: CVE-2026-39813 (\u0440\u0430\u043d\u0435\u0435 \u043d\u0435 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u043e \u0441\u043b\u0443\u0447\u0430\u0435\u0432 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438), CVE-2026-39808, CVE-2026-25089 (\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u0439).\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0435\u0449\u0435 \u043d\u0435 \u0431\u044b\u043b \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d. \u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Fortinet \u043f\u043e\u043a\u0430 \u043d\u0438\u043a\u0430\u043a \u043d\u0435 \u043e\u0442\u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u043d\u0430 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Fortinet \u0447\u0430\u0441\u0442\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432\u00a0\u0430\u0442\u0430\u043a\u0430\u0445 \u0441 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435\u043c ransowmare\u00a0(\u0437\u0430\u0447\u0430\u0441\u0442\u0443\u044e \u0432 \u0432\u0438\u0434\u0435 \u043d\u0443\u043b\u0435\u0439) \u0438 \u0432 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u0445\u00a0\u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430\u00a0\u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0441\u0435\u0442\u0435\u0439 \u0436\u0435\u0440\u0442\u0432.\n\n\u0412 \u043e\u0431\u0449\u0435\u0439 \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043d\u0430 \u043a\u0430\u0440\u0430\u043d\u0434\u0430\u0448\u0435 \u0432 CISA \u0441\u0435\u0439\u0447\u0430\u0441 26 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0432 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0433\u043e\u0434\u044b, 13 \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0430\u043c\u0438, \u0437\u0430\u043d\u0438\u043c\u0430\u044e\u0449\u0438\u043c\u0438\u0441\u044f \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u043e\u043c.", "creation_timestamp": "2026-07-18T00:00:32.062297Z"}</description>
      <content:encoded>{"uuid": "6016b31d-656b-4998-975c-73847d29e7de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://t.me/S_E_Reborn/6427", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Defused \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0440\u044f\u0434\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u043a\u0438\u0431\u0435\u0440\u0443\u0433\u0440\u043e\u0437 FortiSandbox \u043e\u0442 Fortinet.\n\n14 \u0430\u043f\u0440\u0435\u043b\u044f Fortinet \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u0442\u0440\u0435\u0445 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0432\u0430\u0436\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439: CVE-2026-39813, CVE-2026-39808 \u0438 CVE-2026-25089.\n\n\u041e\u043d\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u043d\u0435\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u0432\u044b\u0448\u0430\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043a\u043e\u0434 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u043f\u0440\u043e\u0441\u0442\u044b\u0445 \u0430\u0442\u0430\u043a \u0441 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435\u043c \u043a\u043e\u043c\u0430\u043d\u0434, \u043d\u0435 \u0442\u0440\u0435\u0431\u0443\u044e\u0449\u0438\u0445 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c.\n\n\u0414\u043b\u044f \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u044d\u0442\u0438\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0438 \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u043a\u0438 \u0432\u0445\u043e\u0434\u044f\u0449\u0438\u0445 \u0430\u0442\u0430\u043a \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430\u043c \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0440\u0430\u0437\u0432\u0435\u0440\u0442\u044b\u0432\u0430\u043d\u0438\u044f \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0445 \u0432\u0435\u0440\u0441\u0438\u0439.\n\n\u041a\u0430\u043a \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442 \u0432 Defused, \u0437\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 24 \u0447\u0430\u0441\u0430 \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet FortiSandbox, \u0432\u043a\u043b\u044e\u0447\u0430\u044f: CVE-2026-39813 (\u0440\u0430\u043d\u0435\u0435 \u043d\u0435 \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d\u043e \u0441\u043b\u0443\u0447\u0430\u0435\u0432 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438), CVE-2026-39808, CVE-2026-25089 (\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u0439).\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0435\u0449\u0435 \u043d\u0435 \u0431\u044b\u043b \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d. \u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Fortinet \u043f\u043e\u043a\u0430 \u043d\u0438\u043a\u0430\u043a \u043d\u0435 \u043e\u0442\u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u043d\u0430 \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 Fortinet \u0447\u0430\u0441\u0442\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0432\u00a0\u0430\u0442\u0430\u043a\u0430\u0445 \u0441 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435\u043c ransowmare\u00a0(\u0437\u0430\u0447\u0430\u0441\u0442\u0443\u044e \u0432 \u0432\u0438\u0434\u0435 \u043d\u0443\u043b\u0435\u0439) \u0438 \u0432 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f\u0445\u00a0\u043a\u0438\u0431\u0435\u0440\u0448\u043f\u0438\u043e\u043d\u0430\u0436\u0430\u00a0\u0434\u043b\u044f \u0432\u0437\u043b\u043e\u043c\u0430 \u0441\u0435\u0442\u0435\u0439 \u0436\u0435\u0440\u0442\u0432.\n\n\u0412 \u043e\u0431\u0449\u0435\u0439 \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043d\u0430 \u043a\u0430\u0440\u0430\u043d\u0434\u0430\u0448\u0435 \u0432 CISA \u0441\u0435\u0439\u0447\u0430\u0441 26 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 Fortinet, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0432 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0435 \u0433\u043e\u0434\u044b, 13 \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0433\u0440\u0443\u043f\u043f\u0438\u0440\u043e\u0432\u043a\u0430\u043c\u0438, \u0437\u0430\u043d\u0438\u043c\u0430\u044e\u0449\u0438\u043c\u0438\u0441\u044f \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u043e\u043c.", "creation_timestamp": "2026-07-18T00:00:32.062297Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6016b31d-656b-4998-975c-73847d29e7de/export</guid>
      <pubDate>Sat, 18 Jul 2026 00:00:32 +0000</pubDate>
    </item>
    <item>
      <title>37d2bcae-e101-4391-a69b-b8678386d431</title>
      <link>https://vulnerability.circl.lu/sighting/37d2bcae-e101-4391-a69b-b8678386d431/export</link>
      <description>{"uuid": "37d2bcae-e101-4391-a69b-b8678386d431", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqunja2zpn2g", "content": "\ud83d\udee1\ufe0f KEV WATCH: SharePoint CVE-2026-58644 (RCE, CVSS 9.8) exploited as a zero-day, now in CISA KEV (FCEB deadline Jul 19). Fortinet FortiSandbox CVE-2026-39808 &amp;amp; CVE-2026-25089 \u2014 unauth RCE, confirmed exploited. Patch internet-facing gear NOW. Src: CISA / THN", "creation_timestamp": "2026-07-17T21:02:05.172556Z"}</description>
      <content:encoded>{"uuid": "37d2bcae-e101-4391-a69b-b8678386d431", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqunja2zpn2g", "content": "\ud83d\udee1\ufe0f KEV WATCH: SharePoint CVE-2026-58644 (RCE, CVSS 9.8) exploited as a zero-day, now in CISA KEV (FCEB deadline Jul 19). Fortinet FortiSandbox CVE-2026-39808 &amp;amp; CVE-2026-25089 \u2014 unauth RCE, confirmed exploited. Patch internet-facing gear NOW. Src: CISA / THN", "creation_timestamp": "2026-07-17T21:02:05.172556Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/37d2bcae-e101-4391-a69b-b8678386d431/export</guid>
      <pubDate>Fri, 17 Jul 2026 21:02:05 +0000</pubDate>
    </item>
    <item>
      <title>243ff073-c658-4227-8c9c-a37f0a43b23e</title>
      <link>https://vulnerability.circl.lu/sighting/243ff073-c658-4227-8c9c-a37f0a43b23e/export</link>
      <description>{"uuid": "243ff073-c658-4227-8c9c-a37f0a43b23e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116936112033271356", "content": "Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory\nCisco:\nMedium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity\nAnd if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:\nCISA:\nCVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808 \nCVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089\nAnd a Microsoft vulnerability:\nCISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom", "creation_timestamp": "2026-07-17T15:51:08.111918Z"}</description>
      <content:encoded>{"uuid": "243ff073-c658-4227-8c9c-a37f0a43b23e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-39808", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116936112033271356", "content": "Broadcom has new advisories addressing two high-severity vulnerabilities that were fist published on the 15th https://support.broadcom.com/web/ecx/security-advisory\nCisco:\nMedium Severity: CVE-2025-20204and CVE-2025-20205 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-xss-42tgsdMG @TalosSecurity\nAnd if you missed this yesterday, CISA added two Fortinet vulnerabilities to the catalogue:\nCISA:\nCVE-2026-39808: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-39808 \nCVE-2026-25089: Fortinet FortiSandbox OS Command Injection Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-25089\nAnd a Microsoft vulnerability:\nCISA: CVE-2026-58644: Microsoft SharePoint Deserialization of Untrusted Data Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-58644 #Microsoft #CISA #Fortinet #infosec #vulnerability #Cisco #Broadcom", "creation_timestamp": "2026-07-17T15:51:08.111918Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/243ff073-c658-4227-8c9c-a37f0a43b23e/export</guid>
      <pubDate>Fri, 17 Jul 2026 15:51:08 +0000</pubDate>
    </item>
  </channel>
</rss>
